Picture of clothing model

TK Maxx loses payment details

Customers are urged to check statements for fraudulent use of account data following attack

Written by Dave Friedlos and Tom Young

Computing, 25 Jan 2007

Retailer TK Maxx has warned UK customers that their credit and debit card details may have been stolen in a hacking attack on the computer systems of its parent company TJX.

TJX says the attack occurred in December, but, on the advice of investigative authorities, only alerted customers last week.

The intrusion hit systems that manage customer transactions such as credit card, debit card and refunded transactions. TJX has identified some information that has been stolen, but the full extent of the theft is unknown.

Chairman Ben Cammarata says information on transactions made between May and December last year may have been accessed and is advising customers to review bank and credit card statements carefully.

‘Since discovering this crime we have been working to protect customers and strengthen the security of our systems,’ he said.

TJX is working with General Dynamics and IBM to boost security and says a containment plan will prevent further intrusions.

David Roberts, chief executive of The Corporate IT Forum, says it appears the retailer may have underinvested in systems to protect information.

‘I do not know of any other retailer that has suffered a similar attack in recent years. It will require a major revision to ensure its systems are foolproof,’ he said.

Roberts says ecrime is a growing threat, and any firm that stores credit and debit card information is a target and faces severe damage to their reputation.

Just last week, Sweden’s largest bank Nordea suffered the biggest internet fraud in history. More than eight million kronor (£600,000) disappeared in three months as a result of tailor-made Trojans, affecting 250 customers.

Gartner security analyst Jay Heiser says informing customers immediately of breaches would not necessarily help as many individuals do not know what to do when notified that their information has been lost. ‘But if firms were forced to disclose information about breaches sooner there would be an incentive to improve security,’ he said.

What do you think? Email us at feedback@computing.co.uk

Further reading

Bank victim of phishing strike

Publicise the phishing facts

International phishing gang arrested

  • Have your say
  • Send to a friend
  • Print this
  • Share

reader comments

related articles

 
Nominet

Police shut 1,200 scam websites

Massive combined operation takes down sites selling fake or non-existent designer goods 03 Dec 2009

Public Sector

Online bank hackers get 13 years

Another victory for the Met's central e-crime unit 16 Nov 2009

Communications

RSA 2009: FBI agent gives inside story of Dark Market bust

Agent Mularski reveals how his undercover operation helped foil a major cybercrime ring 23 Apr 2009

related whitepapers

today's top stories

Software

Police hunt for moles with security software

Lancashire Constabulary to monitor data input of 7,000 staff in bid to prevent intelligence leaks 09 Feb 2010

Hardware

PaperlinX outsources IT and comms to Bull and BT

Paper company spends €22m on five-year deal for desktop management, helpdesk and datacentre services 05 Feb 2010

Management

Social tools take KM to a new level

Technology expert David Tebbutt explains how – and why – organisations should integrate social networking tools into their knowledge management strategy 02 Feb 2010

Management

EDS court defeat puts vendors on their guard

BSkyB’s victory in a long-running court case against EDS has serious implications for the IT industry 02 Feb 2010

Security

Law firm monitors web traffic violations

Bucks declining global security appliance sales with unified threat management (UTM) platform deployment 01 Feb 2010

> More news

Advertisement

Subscribe

Security: The New Face of Intrusion Prevention
An outline of traditional IPS functionality, modern developments and how IPS can be deployed easily.

UK businesses’ attitudes to Cloud Computing revealed

Features results from a survey of over 200 Computing readers.

Advertisement

Keep up to date with the latest products, services and technologies from the world's leading IT companies; ITHound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

More available - click 'submit' to view

Existing User

Newsletter user login:

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job

IT Salary Checker

  • Are you being paid what you are worth?
Check salary here

Advertisement

Latest poll

Internet Explorer 6

Internet Explorer 6

Following recent concerns about the security of Internet Explorer 6 are you planning to phase it out?

View poll results

> More polls

Latest audio and video articles

Tony McAlisterVideo

Video Q&A: Tony McAlister, CTO, Betfair - Part one

On changing the skills development strategy at the online gambling firm - part one of a two-part video interview 05 Nov 2009

Video

Nokia shows upcoming handset technologies

Mobile phone features of tomorrow take the stage 21 Oct 2009

> More audio and video

Latest in-depth articles

Analysis

Police hunt for moles with security software

Lancashire Constabulary to monitor data input of 7,000 staff in bid to prevent intelligence leaks 09 Feb 2010

Businessman with eye patch, dagger and tie round head, sitting at laptopFeatures

Are you sure you're not a pirate?

It is alarmingly easy for an IT leader to unwittingly exceed the scope of a software licence, and the chances of being caught out have never been greater, as technology lawyers Mark Weston and Paul Gershlick explain 09 Feb 2010

> More in depth articles

Primary Navigation